QLDB ledger permissions mode is not set to STANDARD

Description

Amazon Quantum Ledger Database (Amazon QLDB) is a fully managed ledger database for cryptographically verifiable transaction logging. You can use the QLDB API or the AWS Command Line Interface (AWS CLI) to create, update, and delete ledgers in Amazon QLDB. You can also list all the ledgers in your account, or get information about a specific ledger.

Code Example

resource "aws_qldb_ledger" "standard" {
  ...
+ permissions_mode = "STANDARD"
}

Remediation

Terraform

Resource: aws_qldb_ledger
Arguments: permissions_mode

Rule Details

Field	Value
ID	IAC-0219
Severity	MEDIUM
IaC Type	Cloudformation
Frameworks	CloudFormation, Terraform, TerraformPlan, Serverless
Checkov ID	CKV_AWS_170

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

QLDB ledger permissions mode is not set to STANDARD

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

QLDB ledger permissions mode is not set to STANDARD ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

QLDB ledger permissions mode is not set to STANDARD

Description

Code Example

Remediation

Rule Details

References